Josh Boyd: Author Summary
| Build | Completed | Code Changes | Tests |
|---|---|---|---|
| OFT › SNIFF › #109 | 7 months ago | Testless build | |
| OFT › PHPDOC › #214 | 7 months ago |
OFJ-1281 Add a feature to convert org objects to systems and vice-versa
Add CSRF to POST request Add punctuation to form prompt Merge branch 'master' into ofj1281
Conflicts: public/javascripts/Fisma/Chart-min.js public/javascripts/Fisma/OrganizationTreeView-min.js public/javascripts/Fisma/Search-min.js public/javascripts/combined-min.js public/javascripts/combined.js |
Testless build |
| OFT › JSL › #426 | 7 months ago |
OFJ-1281 Add a feature to convert org objects to systems and vice-versa
Add CSRF to POST request Add punctuation to form prompt Merge branch 'master' into ofj1281
Conflicts: public/javascripts/Fisma/Chart-min.js public/javascripts/Fisma/OrganizationTreeView-min.js public/javascripts/Fisma/Search-min.js public/javascripts/combined-min.js public/javascripts/combined.js |
37 of 41 failed |
| OFT › SCHEMA › #241 | 7 months ago |
OFJ-1281 Add a feature to convert org objects to systems and vice-versa
Add CSRF to POST request Add punctuation to form prompt Merge branch 'master' into ofj1281
Conflicts: public/javascripts/Fisma/Chart-min.js public/javascripts/Fisma/OrganizationTreeView-min.js public/javascripts/Fisma/Search-min.js public/javascripts/combined-min.js public/javascripts/combined.js |
Testless build |
| OFT › TRUNK › #823 | 7 months ago |
OFJ-1281 Add a feature to convert org objects to systems and vice-versa
Add CSRF to POST request Add punctuation to form prompt Merge branch 'master' into ofj1281
Conflicts: public/javascripts/Fisma/Chart-min.js public/javascripts/Fisma/OrganizationTreeView-min.js public/javascripts/Fisma/Search-min.js public/javascripts/combined-min.js public/javascripts/combined.js |
Testless build |
| DEMO › REBUILDDEMO › #152 | 7 months ago |
OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Detect and use the correct formatting output for the datatable. OFJ-1467 imeout on create system when using the "copy user access"
feature Modify UserRoleOrganization->_invalidateAcl() to use the User relation of the UserRole Simplify the creation of new UserRoles in the SystemController so that there's not a query in a loop OFJ-1507 The html tag shows on the Organizations Hierarchy View page
Change usage of YAHOO.widget.TextNode to YAHOO.widget.HTMLNode Admin
Move migration 118 to 120 post rebase of release-2.14 onto master OFJ-1452 Chart links on findings without corrective actions chart is
wrong Fix finding generation so that findings are generated without creating a whole mess of extra empty evaluations OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Cherry pick OFJ-1319 into single commit OFJ-1458 Open Findings By Organization chart is too slow
Add script to generate test systems Clean up DashboardController code a bit to speed up Merge branch 'master' into ofj545
OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Modify Fisma.TableFormat.formatHtml to apply YAHOO.widget.TableFormat.formatDefault OFJ-956 Improve role-privilege assignment interface
Add YAHOO.widget.GroupedDataTable Modify view scripts to use YAHOO.widget.GroupedDataTable instead of YAHOO.widget.DataTable Modify the role matrix view script to group by resource in the datatable OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Remove titles from charts, since they're redundant Merge branch 'master' into ofj1457
OFJ-1487 Error message shows on the msgbar after save the privileges
with IE Use jQuery .text() instead of textContent, which isn't available in IE. OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Fix typo Make legends single column, multiple row OFJ-1502 Flash storage is broken when trying to insert strings that
contain double quotes Remove native json parsing directive Move swfstore.swf to swfstore-2.9.0.swf OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Fix legend colors for incident history chart Remove the "Threat Level" text from the legend Change all instances of grey text to black OFJ-1439 Encoding error when exporting excel plugin reports
Add ENT_COMPAT and 'UTF-8' params to the html_entity_decode call OFJ-1502 Flash storage is broken when trying to insert strings that
contain double quotes Revert phploader to previous version, modify 2.9.0 meta data so that it works with out version of phploader Revert changes to swfstore OFJ-1503 Missing ACL on "Open Findings By Organization" chart
All finding dashboard charts are missing ACL, change $this->_visibleOrgs to use getOrganizationsByPrivilegeQuery() OFJ-1464 CLONE - Printing a tab view should print the contents of all
tabs (even deferred/unloaded tabs) Update print-min.css OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Fix the loop so that the correct key number is actually used Modify tableFormat so it doesn't error out on empty fields This still doens't fix the problem in Firefox though. Merge remote-tracking branch 'origin/release-2.14'
OFJ-1502 Flash storage is broken when trying to insert strings that
contain double quotes Remove forcing of using flash storage engine Recombine/minify OFJ-956 Improve role-privilege assignment interface
Fix character encoding issue by using Fisma.TableFormat.formatHtml OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Fix legend styling Change legend back to 2 rows, doesn't work properly when there's lots of categories, like on the incident dashboard Fix sizes of 2 charts so that they match OFJ-1440 Merge aesthetic chart improvements to release-2.14 branch
Do not show the full category name in the legend on the incident categories chart OFJ-1502 Flash storage is broken when trying to insert strings that
contain double quotes Update YUI to 2.9.0 Update phploader Still need to fix combo usage under SSL, which is broken by new phploader Admin
Minify CSS OFJ-956 Improve role-privilege assignment interface
Remove sorting from the privilege column, since it doesn't work with the grouped data table right now OFJ-1502 Flash storage is broken when trying to insert strings that
contain double quotes Call removeItem before setItem, so that Flash storage actually works. OFJ-1440 Merge aestehetic chart improvements to release-2.14 branch
Remove "user patterns instead of colors" Increase transparency on tooltips to 95% Fix a few critical issues out of the code review. Merge branch 'master' into ofj1446
|
Testless build |
| OFT › SNIFF › #98 | 7 months ago |
Finish ZF upgrade
Remove zfdebug
Braid: Add mirror 'library/Symfony/Components' at r24024
Braid: Add mirror 'library/ZFDebug' at r116
Braid: Add mirror 'library/Zend' at r24449
Remove Symfony Components
Remove braids/library/zend
|
Testless build |
| OFT › PHPDOC › #203 | 7 months ago |
Finish ZF upgrade
Remove zfdebug
Braid: Add mirror 'library/Symfony/Components' at r24024
Braid: Add mirror 'library/ZFDebug' at r116
Braid: Add mirror 'library/Zend' at r24449
Remove Symfony Components
Remove braids/library/zend
|
Testless build |
| OFT › SCHEMA › #230 | 7 months ago |
Finish ZF upgrade
Remove zfdebug
Braid: Add mirror 'library/Symfony/Components' at r24024
Braid: Add mirror 'library/ZFDebug' at r116
Braid: Add mirror 'library/Zend' at r24449
Remove Symfony Components
Remove braids/library/zend
|
Testless build |
| OFT › JSL › #415 | 7 months ago |
Finish ZF upgrade
Remove zfdebug
Braid: Add mirror 'library/Symfony/Components' at r24024
Braid: Add mirror 'library/ZFDebug' at r116
Braid: Add mirror 'library/Zend' at r24449
Remove Symfony Components
Remove braids/library/zend
|
37 of 41 failed |
| Build | Completed | Code Changes | Tests |
|---|---|---|---|
| OFT › TRUNK › #807 | 8 months ago |
OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Detect and use the correct formatting output for the datatable. OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Modify Fisma.TableFormat.formatHtml to apply YAHOO.widget.TableFormat.formatDefault OFJ-1468 A XSS vulnerability found on findings "Sample Plugin Report
With HTML Column" page when system description of "<script type="text/javascript">alert('XSS FAIL!');</script>" Fix the loop so that the correct key number is actually used Modify tableFormat so it doesn't error out on empty fields This still doens't fix the problem in Firefox though. |
Testless build |
| OFT › TRUNK › #796 | 8 months ago |
Merge branch 'master' into ofj545
|
Testless build |
| OFT › TRUNK › #736 | 11 months ago |
Merge branch 'master' into ofj1320
Merge branch 'master' into ofj1340
Merge branch 'master' into ofj1312-2
Conflicts: public/javascripts/combined-min.js Admin
Reminify |
Testless build |
| OFT › TRUNK › #693 | 1 year ago |
OFJ-1302 Add mod_deflate directives to .htaccess, and make sure that javascript has a far future expiration date Modify .htaccess, increases server load slightly, but page load should be faster due to half as much data to download thanks to compression. (version 8d18d3c5fc8b39f805e9a974e5dbe2d6f64d08d0)
|
Testless build |
| OFT › TRUNK › #658 | 1 year ago |
Revert "OFJ-1228 A XSS Vulnerability found on ir-workflow edit page after update" This reverts commit e1e5fa9ba409cc82e69886ea9ea2e3f7e4ce4c34. (version 1b174fa82c16bb63bef61b9120634937b6f2813c)
OFJ-1232 The column of "Percentage" is not sort by number on Documentation Compliance Report page Modify query so that the percentage column is a numeric, and not made into a string by CONCAT Modify the formatter so that a % sign is added to the data table view Modify the Fisma_Report_Column for percentage so that it's passed as a numeric, and not a string This has the side effect of removing % signs in the PDF and XLS reports, but I don't have time to care. This would take several hours of work, and the column is already labeled "PERCENTAGE". Sorry that it's missing a % sign now. On a positive note, you can actually sort the percentages in the data tables in the browser now. (version c004d7e623299dee654b7a411d406d144b168c65)
OFJ-1247 Fix FuzzDoctrine Modify the string being inserted so that it's different on every run so that the listeners always fire. (version 61be0b145e70fcdf5e87e4151d9d938a6cbc93b8)
Merge branch 'master' into ofj1180 (version 41dd999dfc546c7685f184b02c3f704bc0263db0)
OFJ-1256 Remove reference to account.js on user edit view Remove reference to no longer existing account.js (version 6e8136a628c71bdfd0fd0c93dcd65e7625df456a)
OFJ-1246 XSS Vulnerability in User View Escape title in tabview (version 9ffeb80392d73f6f5e51f8e115409f99c0b0b1e1)
OFJ-1228 A XSS Vulnerability found on ir-workflow edit page after update role nickname on the role edit page Fix line length (version 9d2869e6f3fb32d7c00121171c0aec6126e587e4)
OFJ-1247 Fix FuzzDoctrine Make sure that the listeners are enabled, and that finding only check's ACL when not in command line mode (version 8550b500f9c1041310c5c4e7698e2653a617b6c3)
Merge branch 'master' into ofj1239 (version 2c5c7b5f8baa9fec49e6d9226067797f36c59e27)
OFJ-1244 CLONE - A XSS Vulnerability on user Audit log page after add or update user name on create or edit user page Put parens back around user name that were mistakenly removed. (version 38e486c9d5d5b5d023a9abe6bb2cdab58a521406)
Merge branch 'master' of git.openfisma.org:openfisma (version e4d0d699415c757ce846137444f0c70a9a510a38)
Braid: Add mirror 'library/Zend' at r23790 (version 676ed2423a0d3ebd3f7458f58d346c37bda5e649)
Merge branch 'master' into ofj1238 (version 875e9feb69539efee6d3ce94b307b2df4ec77130)
OFJ-1228 A XSS Vulnerability found on ir-workflow edit page after update role nickname on the role edit page Escape the roles before they are added to the form (version e1e5fa9ba409cc82e69886ea9ea2e3f7e4ce4c34)
Admin Update CSS/JS (version aa8b2d2b648a85eef5561b43a58f38db904777e5)
OFJ-1242 CLONE - Security Warning Appears in IE The report context switch wasn't loading the images for the XLS and PDF buttons correctly. I've wrapped them in serverUrl() now so that they get the correct URL and are requested securely if the application is accessed via SSL. (version 8860d303c32cd06ce02285cb541fac9e8b821fb5)
Merge branch 'master' into ofj1171 (version 87cbaf2e892795e41ffd153e9a8561c8491a56f5)
Merge branch 'master' into ofj1221 (version 40c6fe9cf5a71dee4acf3b082378faba79dde191)
Admin Update CSS (version 9713b6e42d872a5d3c43848998d7a788f248703d)
Merge branch 'master' into ofj1235 (version e89c30dca809621fad85df54a7ace5cf0d01647a)
OFJ-1236 The sorts are not sorted by number on some report pages Make sure that the parser is set to 'number' instead of 'string' for numeric columns. Additionally, it's pretty ridiculous that this is the way the Fisma_Report_Column constructor is written. What a pain. (version 507896e32ec7f55b932d49928f2b687b44ef38b6)
Braid: Remove mirror 'library/Zend' (version 9e344726e6cd1269726705edb409fb042cddd128)
OFJ-1249 Fix XSS Vulns Fix vulnerabilities in the following areas, by escaping the appropriate variables: Edit privileges for role Edut user (version fe6d6d9ffa7e4b822a0718d1512ea352e3e13235)
Admin Update JS (version 38510b95294df738dfd307301ecacd3015f8256b)
Admin Re-minify and fix build.xml after merges (version a5828ddb0e7a272e5ae6506c74b189f4d6fae4b1)
OFJ-1250 Update HTML Purifier Update HTML Purifier from 4.0.0 to 4.2.0 (version c7441f9c0d6dd176d34640058370f473c9be8b50)
Merge branch 'master' into ofj1218 (version 05d3a84d09970362d15b4787bbc6cd31f3c93adc)
OFJ-1244 CLONE - A XSS Vulnerability found on user Audit log page after add or update user name on create or edit user page Escape the username (version d795965ec7e283ac0567ae2e85767ec2c93afd5e)
OFJ-1228 A XSS Vulnerability found on ir-workflow edit page after update role nickname on the role edit page Escape the roles before they are added to the form (version c3d03df6c5b86254d3d287eb25fb106058dc7daa)
Admin minify/combine (version 5d2d001e61800a850db02c867b4f67f1bac911a6)
Admin Update JS (version 65f8f60fd6c1cf9bae05fdd777dbcae3ccec96de)
OFJ-1232 The column of "Percentage" is not sort by number on Documentation Compliance Report page Remove console.log() (version 7fd3288bda43aaf79b34f99e2ce7fd9a559d0900)
Merge branch 'master' into ofj1230 (version 58b4dff81efc6359482d147c20a007dcbd13333b)
OFJ-1251 Update Zend Framework Update to ZF 1.11.4 (version b8725d6e8349fa0fde1bb97cf93675bf00d98488)
Merge branch 'master' into ofj1217 (version 5655449dd4430693e26cfb491ff1ada3672b9ca9)
Admin minifiy/combine (version 51d6afc96d4f5a94ccf66eec23f8d456b0df0455)
Merge branch 'master' into ofj1181 (version b378a9d484b78d2892aea2d1ea6598a167eb3a01)
OFJ-1262 An error occurs when click "View" link on user account edit page with IE Use $this->links['View'] instead of non-existant $this->viewLink. (version a11e75e3aa1dd99d49ab703ef3d6fd8d3aa6ceb6)
Merge branch 'master' of git.openfisma.org:openfisma (version a653f10f1bb3d863b2b9a3d95b1101254e9cd8bb)
Merge branch 'master' into ofj1144 (version 0c7747062f8d8f015c7c6d7b01b4acb79f1d1bb0)
OFJ-1237 "null%" shows on the Documentation Compliance Report page when there is no system documentation uploaded Modify the formatter so that formatting only occurs if oData is not null (version 92dd3a4d65e5bd631f96f43e72a513779f6314af)
Merge branch 'master' into ofj1174 (version 51cc013fbc894f9e87a17aa500fbf9becef36eb7)
Merge branch 'master' into ofj1224 Conflicts: public/javascripts/combined-min.js (version 2c029feddf0acfd36a5fb2e9fc4f2cb189439077)
|
Testless build |
| OFT › TRUNK › #535 | 1 year ago |
Braid: Add mirror 'library/Zend' at r23589 (version ad8ab038cbdf40402d9fcb9ac1df0f3bdccad6a8)
OFJ-1124 Fix Zend Framework Re-run removal of require's from Zend (version d23e494523e48acdc07557c99540afd2127c0155)
Braid: Remove mirror 'library/Zend' (version 27d56f345f78870fffa69892ce638c237ee0d8e7)
|
Testless build |
| OFT › TRUNK › #505 | 1 year ago |
OFJ-1112 Add unit tests Add basic tests for services (version b927df1295b95782f6bde5a453f1795530e3741f)
|
Testless build |
| OFT › TRUNK › #483 | 1 year ago |
OFJ-1109 Move bootstrap related functionality out of Fisma.php and into Bootstrap.php (version 1c70d43ab34d624e1accfb56970b74cf2913191f)
|
Testless build |
| OFT › TRUNK › #370 | 1 year ago |
OFJ-944 The OIG user can't edit the incident when the incident is locked by the OIG user Remove the conditional elseif check. If the user is an actor, then the user should always be able to update the incident, even if it's locked. (version 1949c4ee28720de51491f676410d1b6e5671d3e5)
|
Testless build |
| OFT › TRUNK › #324 | 1 year ago |
OFJ-905 Separate configuration files Fix tests so that they will run under production or development mode Modify Fisma_Configuration_Array so that NULL is returned if a key does not exists (version 2800eab0045b28fa3544da598969daf981043544)
|
Testless build |
| Build | Completed | Code Changes | Tests |
|---|---|---|---|
| OFT › TRUNK › #804 | 8 months ago |
|
Testless build |
| OFT › JSL › #321 | 10 months ago |
Merge branch 'master' into ofj1413
|
No tests found |
| OFT › TRUNK › #487 | 1 year ago |
OFJ-1109 Move bootstrap related functionality out of Fisma.php Change closure to use create_function, since PHP 5.2 doesn't support closures, and we're still supporting PHP 5.2 for some dumb reason (version 2d0c2b6c467b2a0de2a7e469bf959ff90d928144)
|
Testless build |
| OFT › TRUNK › #323 | 1 year ago |
OFJ-905 Separate configuration files Back out entire issue until it doesn't break the build. (version 8ba6ac67d0f4cc8975b1c09f244d8cdfb8128fa3)
|
Testless build |
| OFT › TRUNK › #219 | 1 year ago |
OFJ-5 Dynamic Approval Workflow Fix phpunit to ignore application/modules/controllers, instead of application/controllers, since phpunit is stupid and if it doesn't find an exclude directory, then it throws an error. (version c7eb8807a6acb50d380c0c22f8f808cd1375d91d)
|
Testless build |
| OFT › TRUNK › #136 | 1 year ago |
OFJ-697 Configuration model is not suited to proper output filtering Assign length to string columns that should be inserted into the database as text columns, but Doctrine is screwing up the SQL and only making them varchar(255) instead of text type. Bump the migration version too. (version 85910294a6cb7b635fb58a8fcad07754e34ad2d7)
|
Testless build |
Add CSRF to POST request
Add punctuation to form prompt
Conflicts:
public/javascripts/Fisma/Chart-min.js
public/javascripts/Fisma/OrganizationTreeView-min.js
public/javascripts/Fisma/Search-min.js
public/javascripts/combined-min.js
public/javascripts/combined.js